ATTACK AD [PTsecurity] Metasploit MS17-010 ETERNALBLUE Exploitation (CVE-2017-0144)

SID: 10001726Rev: 132 views
History
Sourceptrules/open
CreatedJune 24, 2025
UpdatedJune 24, 2025
Classificationattempted-admin
alert smb any any -> any any (msg:"ATTACK AD [PTsecurity] Metasploit MS17-010 ETERNALBLUE Exploitation (CVE-2017-0144)"; flow:established, to_server, no_stream; content:"|FF|SMB|33|"; byte_test:2, >, 61000, 42, relative, little; flowbits:isset, SMB.NTTrans.Req; flowbits:isnotset, SMB.NTTrans2.Req; reference:cve, 2017-0144; reference:url, github.com/rapid7/metasploit-framework/commit/c9473f8cbc147fe6ff7fe27862fd3d1e9f27c4f5; reference:url, rules.ptsecurity.com; classtype:attempted-admin; sid:10001726; rev:1;)

References

cve2017-0144
urlgithub.com/rapid7/metasploit-framework/commit/c9473f8cbc147fe6ff7fe27862fd3d1e9f27c4f5
urlrules.ptsecurity.com

Comments (0)

Please sign in to leave a comment.
Sign in

No comments yet. Be the first to comment!